Newsletter policy

Dear user, we wish to inform you that the "European Regulation 2016/679 on the protection of individuals with regard to the processing of personal data, as well as on the free movement of such data" ("GDPR") provides for the protection of persons and other subjects regarding the processing of personal data. Vaimo SpA., as "Data Controller", pursuant to Article 13 of the GDPR, therefore, provides you with the following information:

Data Categories

object of the processing is your personal e-mail.

Data Controller

the data controller is Vaimo SpA, with legal office in Via Emilia Est 985 - 41122 - Modena, VAT 03143150369, and can be contacted by phone at 059.787.56.10 or by email at privacy@dispensaemilia.it

Source of personal data

personal data are collected directly from the data subject.

Purpose and legal basis for processing data

personal data are processed by the Data Controller according to the following purpose based on your consent: sending commercial and marketing communications by the Data Controller by means of newsletters or for research related to customer satisfaction. This activity could also take place through a profiling process, aimed at personalizing the communications transmitted to the user.

Recipients and categories of recipients

within the limits relevant to the processing purposes indicated, your data may be communicated, if necessary, to other subjects related to processing activities, internal and external to the Data Controller, such as employees and assimilated, partners, consulting companies, private companies. Your data will not be spread in any way.

Transfer of personal data between countries

The data collected could be transferred to third countries outside the European Economic Area, by virtue of an adequacy decision of the Commission or in the presence of appropriate guarantees, to fulfill the aforementioned purposes. The data can be communicated to the foreign partners of the Data Controller, natural and/or legal persons, or to other companies of third countries belonging to the same business group of the Data Controller, by virtue of an adequacy decision of the Commission: Commission Adequacy Decision 2000/518/EC of 26 July 2000 on data transfer to Switzerland; Commission Implementing Decision 2021/1772 of 28 June 2021 2000 on data transfer to the United Kingdom.

Data retention period

in the absence of specific retention periods set out in this policy, your personal data will be retained only for as long as we need it to fulfil the purpose for which we have collected it, according to the “storage limitation principle” (Article 5 of GDPR) and, if applicable, as long as required by statutory retention requirements.

Rights of the data subject

each user is always entitled to request the Data Controller to access, correct or delete his data, limit the processing or the possibility of objecting to the processing, requesting data portability, revoking consent to the processing of data, claiming these and other rights provided by the GDPR through a simple communication to the Controller. The data subject can also lodge a complaint with a supervisory authority.

Obligation of the data subject to provide personal data

The provision of your data is optional to receive the newsletter. Failure to provide it will not allow you to subscribe to the newsletter and obtain the relative discount voucher.

Methods of personal data processing

the personal data you provide will be processed in compliance with the aforementioned legislation and the confidentiality obligations that inspire the activity of the Data Controller. The data will be processed both with IT tools and on paper and on any other type of suitable support (ex. cloud systems, archiving systems and digital substitutive storage, ...), in compliance with adequate technical and organizational security measures provided for by the GDPR.

Contact details of the D.P.O.

he Data Controller has appointed the D.P.O. who can be contacted by email at segnalazionidpo@dispensaemilia.it

Automated decision-making

The interested party may be subjected to automated profiling treatments, aimed at personalizing commercial and/or marketing communications transmitted to the user with his consent.